CVE-2019-1000020 -- libarchiveID: oval:org.secpod.oval:def:2001285 | Date: (C)2019-06-19 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards contains a CWE-835: Loop with Unreachable Exit Condition vulnerability in ISO9660 parser, archive_read_support_format_iso9660.c, read_CE/parse_rockridge that can result in DoS by infinite loop. This attack appears to be exploitable via the victim opening a specially crafted ISO9660 file.
Platform: |
Debian 8.x |
Debian 9.x |